Head of Security Architecture & Projects

The Apex Group was established in Bermuda in 2003 and is now one of the world’s largest fund administration and middle office solutions providers.

Our business is unique in its ability to reach globally, service locally and provide cross-jurisdictional services. With our clients at the heart of everything we do, our hard-working team has successfully delivered on an unprecedented growth and transformation journey, and we are now represented by over circa 13,000 employees across 112 offices worldwide.Your career with us should reflect your energy and passion.

That’s why, at Apex Group, we will do more than simply ‘empower’ you. We will work to supercharge your unique skills and experience.

Take the lead and we’ll give you the support you need to be at the top of your game. And we offer you the freedom to be a positive disrupter and turn big ideas into bold, industry-changing realities.

For our business, for clients, and for you

The Role
Apex is seeking a Head of Enterprise Security Architecture & Projects to lead its enterprise security architecture function and security project delivery capability.  This is a senior leadership role accountable for setting architectural direction, governing secure design, and ensuring the successful delivery of security-led initiatives across the organization.

You will provide strategic leadership to all Security Architects and a dedicated security project team, acting as the central authority for security architecture decisions while ensuring security initiatives are delivered effectively, consistently, and in alignment with business priorities.

Key Responsibilities  

•     Define and own the enterprise security architecture strategy aligned to Apex’s technology roadmap, risk appetite, and regulatory obligations.
•     Ensure Security architects and project managers meet KPI’s and business deliverables.
•  Develop roadmaps to enable the expansion of team capabilities to keep up with emerging standards and technologies.
•     Lead and manage all Security Architects across application, cloud, infrastructure, data, and emerging technology domains.
•     Provide architectural governance and act as the final security design authority for major programs, platforms, and initiatives.
•    Translate security strategy, principles, and standards into practical reference architectures, patterns, and roadmaps.
•     Oversee the delivery of security-related projects and programs, ensuring alignment between architecture intent and execution.
•     Establish and maintain security architecture governance processes, including design reviews and risk-based decision-making.
•     Partner closely with Technology, Engineering, Cloud, Data, and Business teams to embed security by design.
•     Ensure consistency of security controls and architectural standards across the enterprise.
•     Identify architectural risks and technical debt, proposing pragmatic remediation strategies.
•     Communicate security architecture decisions, trade-offs, and risks clearly to senior leadership and governance forums.
•     Support audit, regulatory, and assurance activities related to security architecture and program delivery.
• there empowered Group Cyber leadership authorities, ensuring timely and effective completion in alignment with organizational priorities.
•    Support the Group Cyber Strategy end-to-end, driving alignment of all activities, decisions, and deliverables with strategic objectives and business outcomes.

Areas of Specialization

•     Enterprise Security Architecture: Definition of security principles, develop and oversee the development of reference  architectures, and own governance of security architecture deployment across the organization .
•     Application, Cloud & Infrastructure Architecture: Secure design of applications, platforms, networks, and hybrid/multi-cloud environments.
•     Data, AI & Emerging Technologies: Security architecture for data platforms, AI-enabled solutions, and new technology adoption.
•     Security Programs & Projects: End-to-end ownership of security initiatives, from business requirements gathering through delivery and implementation governance .
•     Architecture Governance & Advisory: Risk-based architectural decision-making, design assurance, and strategic advisory services.
• Qualifications
•     Formal qualification in Information Security, Computer Science, Engineering, or related technology discipline.
•     Recognised security architecture qualifications such as SABSA or TOGAF, with demonstrated security architecture application.
•     Professional security certifications such as CISSP or CCSP are strongly preferred.
•  Cloud architecture or security certifications (e.g. Azure, AWS or OCI) are desirable.
•    Programme or project delivery qualifications are beneficial.

Required Experience & Skills

Experience: 

•     10+ years in cybersecurity, enterprise architecture, or senior technology roles within complex environments.
•     8+ years in senior management positions within security architecture, technical leadership, or cyber & security program delivery roles.

• Technical Expertise: 
•    Proven experience designing and governing enterprise-wide security architectures across multiple domains.
•     Strong understanding of security architecture frameworks and methodologies (e.g., SABSA, TOGAF, Zero Trust).
•     Experience leading and coordinating teams of security architects across different specialist areas.
•     Demonstrated ability to drive security programs and projects from strategy through to delivery.
•     Strong understanding of cloud and hybrid architectures (Azure, AWS, OCI) and modern enterprise platforms 

Disclaimer: Unsolicited CVs sent to Apex (Talent Acquisition Team or Hiring Managers) by recruitment agencies will not be accepted for this position. Apex operates a direct sourcing model and where agency assistance is required, the Talent Acquisition team will engage directly with our exclusive recruitment partners.